Question 1

In recent years, management's concern about the adequacy of current control and security mechanisms used in a data communications environment has:

Accepted Answer

A) decreased because the new sophisticated technology is far more secure than the old manual methods 
B) remained the same because management was always deeply interest in control and security 
C) decreased because of the change in moral and ethical codes in the U.S.to a kinder and gentler society 
D) increased because this commitment to data communications has changed the potential vulnerability of the organization's assets 
E) remained the same because there are very few threats to data communications 
A) decreased because the new sophisticated technology is far more secure than the old manual methods 
B) remained the same because management was always deeply interest in control and security 
C) decreased because of the change in moral and ethical codes in the U.S.to a kinder and gentler society 
D) increased because this commitment to data communications has changed the potential vulnerability of the organization's assets 
E) remained the same because there are very few threats to data communications

Question 2

Decryption is the process of converting plaintext into ciphertext.

Accepted Answer

A) True 
 B)False

Question 3

The CERT was established at Carnegie Mellon University.

Accepted Answer

A) True 
 B)False

Question 4

What is a packet level firewall as compared to a NAT firewall and as compared to an applications layer firewall?

Accepted Answer

A packet level firewall is a type of fir

Question 5

A hacker gaining access to organizational data files and resources is an example of an) ____________ threat.

Accepted Answer

A) disruptive 
B) controlled chaos 
C) disruptive. 
D) intrusion 
E) disaster 
A) disruptive 
B) controlled chaos 
C) disruptive. 
D) intrusion 
E) disaster

Question 6

When using a digital signature, the sender encrypts the message with their private key and the recipient decrypts the message with the sender's public key.

Accepted Answer

A) True 
 B)False

Question 7

The denial-of-service attack disrupts the network by flooding the network with messages so that regular messages cannot be processed.

Accepted Answer

A) True 
 B)False

Question 8

_______________ is an encryption standard that uses a total of 168 bits as the key.

Accepted Answer

A) Triple DES 
B) Dial-back 
C) WEP 
D) EAP 
E) Ciphering 
A) Triple DES 
B) Dial-back 
C) WEP 
D) EAP 
E) Ciphering

Question 9

What is PKI and why is it important?

Accepted Answer

PKI, or Public Key Infrastructure, is a

Question 10

Secure Sockets Layer is an encryption standard designed for use on the Web.

Accepted Answer

A) True 
 B)False

Question 11

Which of the following is not a type of intrusion prevention system?

Accepted Answer

A) network-based 
B) data link-based 
C) application-based 
D) host-based 
E) none of the above is an appropriate answer 
A) network-based 
B) data link-based 
C) application-based 
D) host-based 
E) none of the above is an appropriate answer

Question 12

Confidentiality is not a threat to business continuity.

Accepted Answer

A) True 
 B)False

Question 13

To snare intruders, many organizations now use _________ techniques.

Accepted Answer

A) entrapment 
B) hacker 
C) Trojan horse 
D) cracker 
E) DES 
A) entrapment 
B) hacker 
C) Trojan horse 
D) cracker 
E) DES

Question 14

Which of the following type of media is least susceptible to eavesdropping?

Accepted Answer

A) fiber optics 
B) twisted pair 
C) microwave 
D) infrared 
E) coaxial cable 
A) fiber optics 
B) twisted pair 
C) microwave 
D) infrared 
E) coaxial cable

Question 15

Companies have learned that threats from hacking from its own employees occur about as often as by outsiders.

Accepted Answer

A) True 
 B)False

Question 16

A brute-force attack is a method of trying to guess the correct password by trying every possible key.

Accepted Answer

A) True 
 B)False

Question 17

Which of the following is not a type of intruder who attempts to gain intrusion to computer networks?

Accepted Answer

A) Delphi team member 
B) script kiddies 
C) crackers 
D) professional hackers 
E) organization employees 
A) Delphi team member 
B) script kiddies 
C) crackers 
D) professional hackers 
E) organization employees

Question 18

A denial-of-service attack occurs when someone external blocks access to your network.

Accepted Answer

A) True 
 B)False

Question 19

IP spoofing means to:

Accepted Answer

A) fool the target computer and any intervening firewall into believing that messages from the intruder's computer are actually coming from an authorized user inside the organization's network 
B) clad or cover the internal processing IP) lines with insulating material to shield the IP lines from excess heat or radiation 
C) illegally tape or listen in on telephone conversations 
D) detect and prevent denial-of-service attacks 
E) act as an intermediate host computer between the Internet and the rest of the organization's networks 
A) fool the target computer and any intervening firewall into believing that messages from the intruder's computer are actually coming from an authorized user inside the organization's network 
B) clad or cover the internal processing IP) lines with insulating material to shield the IP lines from excess heat or radiation 
C) illegally tape or listen in on telephone conversations 
D) detect and prevent denial-of-service attacks 
E) act as an intermediate host computer between the Internet and the rest of the organization's networks

Question 20

Which of the following is not true about one-time passwords?

Accepted Answer

A) Users' pagers can receive them. 
B) They can be used in conjunction with a token system. 
C) The user must enter the one-time password to gain access or the connection is terminated. 
D) This is a good security solution for users who travel frequently and who must have secure dial-in access. 
E) They create a packet level firewall on the system. 
A) Users' pagers can receive them. 
B) They can be used in conjunction with a token system. 
C) The user must enter the one-time password to gain access or the connection is terminated. 
D) This is a good security solution for users who travel frequently and who must have secure dial-in access. 
E) They create a packet level firewall on the system.

In recent years, management's concern about the adequacy of current control and security mechanisms used in a data communications environment has:

Decryption is the process of converting plaintext into ciphertext.

The CERT was established at Carnegie Mellon University.

What is a packet level firewall as compared to a NAT firewall and as compared to an applications layer firewall?

A hacker gaining access to organizational data files and resources is an example of an) ____________ threat.

When using a digital signature, the sender encrypts the message with their private key and the recipient decrypts the message with the sender's public key.

The denial-of-service attack disrupts the network by flooding the network with messages so that regular messages cannot be processed.

_______________ is an encryption standard that uses a total of 168 bits as the key.

What is PKI and why is it important?

Secure Sockets Layer is an encryption standard designed for use on the Web.

Which of the following is not a type of intrusion prevention system?

Confidentiality is not a threat to business continuity.

To snare intruders, many organizations now use _________ techniques.

Which of the following type of media is least susceptible to eavesdropping?

Companies have learned that threats from hacking from its own employees occur about as often as by outsiders.

A brute-force attack is a method of trying to guess the correct password by trying every possible key.

Which of the following is not a type of intruder who attempts to gain intrusion to computer networks?

A denial-of-service attack occurs when someone external blocks access to your network.

IP spoofing means to:

Which of the following is not true about one-time passwords?

Introduction to Data Communications

Application Layer

Physical Layer

Data Link Layer

Network and Transport Layers

Network Design

Wired and Wireless Local Area Networks

Backbone Networks

Wide Area Networks

The Internet

Network Management

Filters

Exam 11: Network Security

In recent years, management's concern about the adequacy of current control and security mechanisms used in a data communications environment has:

Decryption is the process of converting plaintext into ciphertext.

The CERT was established at Carnegie Mellon University.

What is a packet level firewall as compared to a NAT firewall and as compared to an applications layer firewall?

A hacker gaining access to organizational data files and resources is an example of an) ____________ threat.

When using a digital signature, the sender encrypts the message with their private key and the recipient decrypts the message with the sender's public key.

The denial-of-service attack disrupts the network by flooding the network with messages so that regular messages cannot be processed.

_______________ is an encryption standard that uses a total of 168 bits as the key.

What is PKI and why is it important?

Secure Sockets Layer is an encryption standard designed for use on the Web.

Which of the following is not a type of intrusion prevention system?

Confidentiality is not a threat to business continuity.

To snare intruders, many organizations now use _________ techniques.

Which of the following type of media is least susceptible to eavesdropping?

Companies have learned that threats from hacking from its own employees occur about as often as by outsiders.

A brute-force attack is a method of trying to guess the correct password by trying every possible key.

Which of the following is not a type of intruder who attempts to gain intrusion to computer networks?

A denial-of-service attack occurs when someone external blocks access to your network.

IP spoofing means to:

Which of the following is not true about one-time passwords?

Introduction to Data Communications

Application Layer

Physical Layer

Data Link Layer

Network and Transport Layers

Network Design

Wired and Wireless Local Area Networks

Backbone Networks

Wide Area Networks

The Internet

Network Management

Filters